Lucene search
+L

122 matches found

Positive Technologies
Positive Technologies
added 2022/01/06 12:0 a.m.4 views

PT-2022-6514

Name of the Vulnerable Software and Affected Versions Arm Mali GPU Kernel Driver versions r26p0 through r31p0 Arm Mali GPU Kernel Driver versions r0p0 through r35p0 Arm Mali GPU Kernel Driver versions r19p0 through r35p0 Description The Arm Mali GPU Kernel Driver has a vulnerability related to...

7.8CVSS7.4AI score0.01226EPSS
Exploits0References26
OSV
OSV
added 2021/11/16 7:15 p.m.8 views

CVE-2020-12961

A potential vulnerability exists in AMD Platform Security Processor PSP that may allow an attacker to zero any privileged register on the System Management Network which may lead to bypassing SPI ROM protections...

7.8CVSS5.8AI score0.0024EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2021/05/03 12:0 a.m.2 views

VulnCheck KEV: CVE-2021-28664

Arm Mali Graphics Processing Unit GPU kernel driver contains an unspecified vulnerability that may allow a non-privileged user to gain write access to read-only memory, gain root privilege, corrupt memory, and modify the memory of other processes...

9CVSS7.3AI score0.05464EPSS
Exploits0References1
OSV
OSV
added 2021/05/01 12:0 a.m.10 views

ASB-A-174259860

In kbasememfromuserbuffer of malikbasememlinux.c, there is a possible remapping of shared read-only memory as write-able due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

9CVSS7.3AI score0.12084EPSS
Exploits2References1
RedHat Linux
RedHat Linux
added 2021/02/02 12:6 p.m.3 views

QEMU: loader: OOB access while loading registered ROM may lead to code execution

An out-of-bound write access flaw was found in the way QEMU loads ROM contents at boot time. This flaw occurs in the romcopy routine while loading the contents of a 32-bit -kernel image into memory. Running an untrusted -kernel image may load contents at arbitrary memory locations, potentially...

6.8CVSS7.5AI score0.02409EPSS
Exploits0References4
CNVD
CNVD
added 2019/12/18 12:0 a.m.6 views

Unspecified Vulnerability in Barco ClickShare Button R9861500D01

The Barco ClickShare Button R9861500D01 is a wireless control device for presentation systems from Barco Belgium. A security vulnerability exists in the Barco ClickShare Button R9861500D01 with firmware prior to version 1.9.0, which can be exploited by an attacker to control the execution of ROM...

5.9CVSS6.9AI score0.01353EPSS
Exploits0References1
OSV
OSV
added 2019/12/16 5:15 p.m.2 views

CVE-2019-18827

On Barco ClickShare Button R9861500D01 devices before firmware version 1.9.0 JTAG access is disabled after ROM code execution. This means that JTAG access is possible when the system is running code from ROM before handing control over to embedded firmware...

5.9CVSS6.3AI score0.01353EPSS
Exploits0References6
Zero Day Initiative
Zero Day Initiative
added 2019/08/13 12:0 a.m.41 views

Microsoft Windows XmlLite XML space Attribute Denial-Of-Service Vulnerability

This vulnerability allows remote attackers to produce a denial-of-service condition on affected installations of Microsoft Windows. Interaction with the XmlLite.dll library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw...

4.3CVSS5.2AI score0.03102EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/01/22 12:0 a.m.7 views

The vulnerability of Siemens Sinumerik programmable logic controllers lies in the improper use of protection mechanisms, allowing a perpetrator to execute arbitrary code with root privileges.

The vulnerability of Siemens Sinumerik programmable logic controllers is related to the incorrect use of protection mechanisms. Exploiting this vulnerability allows an intruder to inject code into the CRAMFS archive, which will be executed after a reboot with root privileges...

6.8CVSS7.3AI score0.00378EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2017/12/07 12:0 a.m.2 views

Kernel Security Bypass Vulnerability in Multiple Apple Products (CNVD-2018-00178)

Apple iOS, macOS High Sierra, tvOS, and watchOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices. macOS High Sierra is a specialized operating system developed for Mac computers. tvOS is a smart TV operating system. watchOS is a smart watch operating system...

5.5CVSS6.3AI score0.04736EPSS
Exploits3References1
CNVD
CNVD
added 2017/12/07 12:0 a.m.0 views

Kernel Security Bypass Vulnerability in Multiple Apple Products (CNVD-2018-00177)

Apple iOS, macOS High Sierra, tvOS, and watchOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices. macOS High Sierra is a specialized operating system developed for Mac computers. tvOS is a smart TV operating system. watchOS is a smart watch operating system...

5.5CVSS6.3AI score0.0471EPSS
Exploits4References1
OSV
OSV
added 2017/06/07 3:29 p.m.2 views

CVE-2017-7563

In ARM Trusted Firmware 1.3, RO memory is always executable at AArch64 Secure EL1, allowing attackers to bypass the MTEXECUTENEVER protection mechanism. This issue occurs because of inconsistency in the number of execute-never bits one bit versus two bits...

8.1CVSS5.8AI score0.00881EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2017/06/07 12:0 a.m.9 views

PT-2017-17801

Name of the Vulnerable Software and Affected Versions ARM Trusted Firmware version 1.3 Description The issue in ARM Trusted Firmware allows attackers to bypass the MT EXECUTE NEVER protection mechanism because RO memory is always executable at AArch64 Secure EL1. This is due to an inconsistency i...

8.1CVSS5.4AI score0.00881EPSS
Exploits0References4
myhack58
myhack58
added 2016/10/25 12:0 a.m.21 views

UCloud-2 0 1 6 1 0-0 0 1: kernel‘Dirty Cow’to mention the right vulnerability Security Alert-vulnerability warning-the black bar safety net

The Linux kernel recently the outbreak of the’Dirty Cow’Vulnerability, CVE-2 0 1 6-5 1 9 5, can lead to a low-rights user to achieve the local extraction rights. Please check you are using the kernel is in the affected range, and timely upgrades. The scope of the impact Linux kernel =2.6.22...

7AI score
Exploits0
ArchLinux
ArchLinux
added 2016/10/22 12:0 a.m.71 views

[ASA-201610-14] linux: privilege escalation

Arch Linux Security Advisory ASA-201610-14 ========================================== Severity: High Date : 2016-10-22 CVE-ID : CVE-2016-5195 Package : linux Type : privilege escalation Remote : No Link : https://wiki.archlinux.org/index.php/CVE Summary ======= The package linux before version...

7.2CVSS1.2AI score0.83524EPSS
Exploits82References5
ArchLinux
ArchLinux
added 2016/10/21 12:0 a.m.70 views

[ASA-201610-11] linux-lts: privilege escalation

Arch Linux Security Advisory ASA-201610-11 ========================================== Severity: High Date : 2016-10-21 CVE-ID : CVE-2016-5195 Package : linux-lts Type : privilege escalation Remote : No Link : https://wiki.archlinux.org/index.php/CVE Summary ======= The package linux-lts before...

7.2CVSS1.1AI score0.83524EPSS
Exploits82References5
OSV
OSV
added 2016/10/20 2:11 a.m.2 views

USN-3106-1 linux vulnerability

It was discovered that a race condition existed in the memory manager of the Linux kernel when handling copy-on-write breakage of private read-only memory mappings. A local attacker could use this to gain administrative privileges...

7.2CVSS6.9AI score0.83524EPSS
Exploits82References2
myhack58
myhack58
added 2016/04/20 12:0 a.m.32 views

The exception in the exception--by means of a system of exception handling exception achieve incredible exploit-vulnerability warning-the black bar safety net

Memory read, write, execute attribute is system security the most important one of the mechanisms. Usually, if you want to overwrite the data in memory, you must first ensure that the block of memory having a write attribute, if you want to execute a piece of code in memory, you must first ensure...

0.1AI score
Exploits0
CNVD
CNVD
added 2015/01/30 12:0 a.m.4 views

Apple TV and iOS Kernel Shared Memory Subsystem Elevation of Privilege Vulnerability

Apple iOS is the latest operating system for Apple's iPhone and iPod touch devices. Apple TV is Apple's way of allowing photos, videos and music from PCs and iPods to be transmitted wirelessly to a TV in high definition. Apple TV and iOS handle a security issue with the kernel's shared memory...

10CVSS7.4AI score0.02939EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2006/10/05 7:16 p.m.5 views

security flaw

Linux kernel 2.4.x and 2.6.x up to 2.6.16 allows local users to bypass IPC permissions and modify a readonly attachment of shared memory by using mprotect to give write permission to the attachment. NOTE: some original raw sources combined this issue with CVE-2006-1524, but they are different bug...

2.1CVSS5.7AI score0.00411EPSS
Exploits0References4
Rows per page
Query Builder